U.S. flag   An unofficial archive of your favorite United States government website
This is an archive
(replace .gov by .rip)

Cryptographic Module Validation Program CMVP

Certificate #3520

Details

Module Name
SafeNet Cryptovisor K7+ Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
9/4/2024
Validation Dates
09/05/2019;09/19/2019;11/04/2019;03/02/2020;05/04/2020
Overall Level
3
Caveat
When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
Security Level Exceptions
  • Physical Security: Level 4
Module Type
Hardware
Embodiment
Multi-Chip Embedded
Description
The SafeNet Cryptovisor K7+ Cryptographic Module is a high-assurance, Hardware Security Module with a tamper-active physical enclosure targeted at the service provider market. The cryptographic module secures sensitive data and critical applications by storing, protecting and managing cryptographic keys. It provides end users with industry-leading security and performance, and can quickly be embedded directly into servers and security appliances for FIPS 140-2 validated key security for elastic deployments particularly in support of cloud applications. The module meets compliance and audit ne
FIPS Algorithms
AES Certs. #5652 and #5653
CKG vendor affirmed
CVL Certs. #2043, #2044 and #2047
DRBG Cert. #2283
DSA Certs. #1452 and #1453
ECDSA Certs. #1526 and #1527
HMAC Cert. #3766
KAS Certs. #195 and #196
KBKDF Cert. #234
KTS AES Cert. #5652; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Certs. #2632, #3042, and #3043
SHS Certs. #3952, #4533, and #4534
Allowed Algorithms
AES (Cert. #5652, key unwrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 192 bits of encryption strength); NDRNG; RSA (CVL Certs. #2043 and #2044, key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength)
Hardware Versions
808-000069-001 and 808-000070-001
Firmware Versions
1.1, 1.3, 1.4 with Boot Loader version 1.1.2 and 1.1.4

Vendor

Thales
20 Colonade Road, Suite 200
Ottawa, ON K2E 7M6
Canada

Security & Certifications Team
SecurityCertifications@thalesgroup.onmicrosoft.com

Lab

EWA CANADA
NVLAP Code: 200556-0